RSA Keeps RFID Private

RSA's "Blocker Tag" will prevent access to radio-frequency identification tags by eavesdroppers.

RSA Security Inc. will unveil a finished version of its RFID "Blocker Tag" technology that prevents radio-frequency identification tags from being read.

The technology, which RSA plans to demonstrate at its namesake conference this week in San Francisco, is one of the industrys first attempts to secure the anticipated oceans of consumer tracking data to be gathered by the tiny radio-powered tags. As Wal-Mart Stores Inc. and Gillette Co. press on with massive RFID rollouts, tags are expected to be attached, in increasing numbers, to all kinds of products, including manufactured goods, food and apparel.

According to company researchers and security experts, RSA blocker technology could have a profound and positive effect on the budding RFID industry, which has been drawing intensifying criticism from civil libertarians and consumer advocates over privacy concerns.

/zimages/5/28571.gifRead "RFID: Proceed With Caution."

"There is a huge privacy issue because you cant ever verify that the tag has been killed when [customers] leave the store," said Randy Breault, manager of information security services at Hannaford Bros. Co., a grocery chain based in Portland, Maine, that is in the early stages of planning an RFID implementation in its warehouses. "Thats the reason that were starting slow with it and doing it at the pallet level. Youre dealing with a lot of negative potential at the item level."

/zimages/5/28571.gifLooking into RFID? Read "RFID: Hit or Myth?"

RFID tags are little more than small, printed circuits containing a unique identifying number. Special readers query the tags, which respond with their numbers. The numbers can then be used to track the item.

The blocker tag system is software-based and relies on technology developed by RSA researchers that prevents RFID readers from gathering data from other tags in their immediate vicinity. Without it, any RFID reader could query any tag, enabling retailers or other companies to read the tags on any merchandise a customer may be carrying.

Essentially, the blocker tag system works by tricking readers that all the possible RFID tags are present at a given time. Because RFID readers can communicate with only one tag at a time, when multiple tags reply to a single query, the reader detects a collision.

When that happens, the reader tries to communicate with each tag individually, asking each for its next bit, which identifies the portion of a binary tree the tag resides on. However, when queried in the presence of a blocker tag, the blocker tag also responds, but with a "0" and a "1" bit, confusing the reader and preventing it from getting valid responses.

Next page: Broad range of apps for blocker tags.